Oschner Health System

IS Security Architect

Oschner Health System$100K — $130K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • High school diploma or equivalent required; Bachelor's degree preferred.
  • 10 years of experience in information technology security within a regulated industry.
  • Advanced security certifications preferred (e.g., SANS GIAC, ISC2 CISSP).
  • Excellent verbal, written, and diagrammatic communication skills.
  • Strong understanding of IT infrastructure and security frameworks.

Responsibilities

  • Develop and maintain security architecture aligned with business and technology drivers.
  • Track digital business changes and threat environments for security strategy.
  • Participate in application and infrastructure projects for security planning.
  • Establish baseline security configuration standards for systems and operations.
  • Validate IT infrastructure security best practices and recommend enhancements.
  • Review network access and segmentation for compliance with least privilege principles.
  • Collaborate with internal audit on the effectiveness of security controls.

Benefits

  • Professional development opportunities.
  • Flexible scheduling including 24/7 availability.
  • Supportive work environment for individuals with disabilities.
  • Engagement in advanced technology and innovative security practices.
  • Commitment to compliance and ethical standards in healthcare.
Full Job Description
This job guides the technical direction of information security applications and solutions, ensuring alignment with the business strategy. Designs, develops, and implements solutions to business problems. Evaluates and assesses emerging technologies, and analyzes complex business issues to discern implications for systems implementation and support. To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential duties. This job description is a summary of the primary duties and responsibilities of the job and position. It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities. Contents are subject to change at the company's discretion. Education Required - High school diploma or equivalent. Preferred - Bachelor's degree in related field. Work Experience Required - 10 years of related information technology security experience in a regulated industry. Certifications Preferred - SANS GIAC, ISC2 CISSP, or other advanced security certifications. Knowledge Skills and Abilities (KSAs) 3 Effective verbal, written, and diagrammatic communication skills and ability to effectively collaborate with stakeholders, SMEs, peers and leadership to develop solutions and secure stakeholder support. 3 Technical knowledge of the IT infrastructure, managing the security infrastructure and associated regulations and frameworks. 3 Ability to interpret business, technology and threat drivers, and develop practical security roadmaps to handle these drivers. 3 Technical knowledge of systems development life-cycle (SDLC) with a solid understanding of challenges associated with the implementation of information systems, from initial concept through development, testing, implementation and operational support. 3 Working knowledge of SOA integration, integration lifecycle, and enterprise integration services and ability to understand and interpret technological impact to clinical operations including risk management, change management, configuration management, business continuity, safety and analytics. 3 Project management skills and ability to plan and lead medium to large, complex HIT projects. 3 Excellent time management, presentation, and organization skills and ability to take initiative and remain accountable for achieving results. 3 Critical thinking skills and ability to accurately analyze information and make sound decisions. 3 Ability to work a flexible schedule (e.g. 24/7, weekend, holiday, on call availability). Job Duties 3 Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers. 3 Tracks developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans. 3 Participates in application and infrastructure projects to provide security-planning advice. 3 Determines baseline security configuration standards for operations systems, network segmentation, and identity and access management. 3 Validates IT infrastructure and other reference architectures for security best practices and recommends changes to enhance security and reduce risks. 3 Validates security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems. 3 Reviews network segmentation to ensure least privilege for network access. 3 Liaises with the internal audit team to review and evaluate the design and operational effectiveness of security related controls. 3 Performs other related duties as required. The above statements describe the general nature and level of work only. They are not an exhaustive list of all required responsibilities, duties, and skills. Other duties may be added, or this description amended at any time. Remains knowledgeable on current federal, state and local laws, accreditation standards or regulatory agency requirements that apply to the assigned area of responsibility and ensures compliance with all such laws, regulations and standards. This employer maintains and complies with its Compliance & Privacy Program and Standards of Conduct, including the immediate reporting of any known or suspected unethical or questionable behaviors or conduct; patient/employee safety, patient privacy, and/or other compliance related concerns. Physical and Environmental Demands The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Light Work - Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently, and/or a negligible amount of force constantly (Constantly: activity or condition exists 2/3 or more of the time) to move objects. Physical demand requirements are in excess of those for Sedentary Work. Even though the weight lifted may be only a negligible amount, a job should be rated Light Work: (1) when it requires walking or standing to a significant degree; or (2) when it requires sitting most of the time but entails pushing and/or pulling of arm or leg controls; and/or (3) when the job requires working at a production rate pace entailing the constant pushing and/or pulling of materials even though the weight of those materials is negligible. NOTE: The constant stress and strain of maintaining a production rate pace, especially in an industrial setting, can be and is physically demanding of a worker even though the amount of force exerted is negligible. Normal routine involves no exposure to blood, body fluid or tissue and as part of their employment, incumbents are not called upon to perform or assist in emergency care or first aid. There is no occupational risk for exposure to communicable diseases. Because the incumbent works within a healthcare setting, there may be occupational risk for exposure to hazardous medications or hazardous waste within the environment through receipt, transport, storage, preparation, dispensing, administration, cleaning and/or disposal of contaminated waste. The risk level of exposure may increase depending on the essential job duties of the role. Are you ready to make a difference? Apply Today! Ochsner Health does not consider an individual an applicant until they have formally applied to the open position on this careers website. Please refer to the job description to determine whether the position you are interested in is remote or on-site. Individuals who reside in and will work from the following areas are not eligible for remote work position: Colorado, California, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Vermont, Washington, and Washington D.C. Ochsner Health endeavors to make our site accessible to all users. If you would like to contact us regarding the accessibility of our website, or if you need an accommodation to complete the application process, please contact our HR Employee Solution Center at [redacted] (select option 1) or . This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

About Oschner Health System

Oschner Health System is a non-profit healthcare provider that operates hospitals, clinics, and urgent care centers in Louisiana and Mississippi. The system was founded in 1942 and has grown to become the largest healthcare provider in Louisiana. Oschner Health System is committed to providing high-quality, compassionate care to its patients and is dedicated to improving the health of the communities it serves. The system employs over 26,000 people and has over 4,500 affiliated physicians. Oschner Health System is also a leader in medical research and education, with partnerships with several universities and research institutions.
Learn more about Oschner Health System
Size
26,000 employees
Industry
Founded
1942

Similar Jobs

More Jobs at Oschner Health System

More Information Technology Jobs

Find similar IS Security Architect jobs: